@zuplo/editor
Local development editor for the Zuplo CLI
100
Versions
MIT
License
No
Install Scripts
Missing
Provenance
Supply chain provenance
Status for the latest visible version.
No SLSA provenance
npm registry signatures
gitHead linked
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
ntottenzuplo-integrationsvazexqi
Keywords
zuplo
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:dist/client/static/js/abap-BbiO7Wbk.js | AI (source-diff): Minified syntax grammar bundle for editor; stable pattern across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-CBFNFAMe.js | AI (source-diff): Minified syntax grammar bundle for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-Bmzvx-Vi.js | AI (source-diff): Minified syntax grammar bundle for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-UBikFsbJ.js | AI (source-diff): Minified syntax grammar bundle for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-Br2TjSse.js | AI (source-diff): Minified syntax grammar bundle for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-D_iZMEyP.js | AI (source-diff): Minified syntax grammar bundle for editor. | ai | |
| publish-pattern | rapid-publish | AI (publish-pattern): CI/CD automated publishing pipeline; rapid successive publishes are normal for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-Dz_ooWwW.js | AI (source-diff): Minified syntax grammar bundle for editor. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-Dfr1mpLq.js | AI (source-diff): False positive; minified editor grammar/theme JS, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-HD5AIyNS.js | AI (source-diff): Minified theme bundle for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CiISTuVQ.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CiISTuVQ.js | AI (source-diff): Network calls and dynamic code in a Vite-bundled React SPA are expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DmWGcrVL.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-ST6ayp3C.js | AI (source-diff): Standard Vite-minified React SPA bundle; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-ST6ayp3C.js | AI (source-diff): Network calls + dynamic code in a React SPA bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DWTZYeHR.js | AI (source-diff): Standard Vite-minified React SPA bundle; minification is expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CMWE9UIB.js | AI (source-diff): Standard Vite-minified React bundle; consistent pattern across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CMWE9UIB.js | AI (source-diff): Network calls and dynamic code in a React/Vite frontend bundle are normal; no dropper behavior evident. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DCnb3pCp.js | AI (source-diff): Standard Vite-minified React bundle; consistent pattern across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-VxzyicUY.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-VxzyicUY.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-B_nqqAYd.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DU38Su-b.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DU38Su-b.js | AI (source-diff): Network calls and dynamic execution are normal in a bundled React SPA; no dropper/loader indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DUuf5rOD.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-DrXMzQ-5.js | AI (source-diff): Vite-bundled editor theme chunk; minified JSON color data. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-u71oQlpc.js | AI (source-diff): False positive; file is a bundled grammar definition with no actual network calls or dynamic code execution. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/blade-u71oQlpc.js | AI (source-diff): Vite-bundled syntax grammar chunk for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-lblXUcin.js | AI (source-diff): Vite-bundled syntax grammar chunk for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-CNhJ6s1k.js | AI (source-diff): Vite-bundled syntax grammar chunk for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-CCvaLZpC.js | AI (source-diff): Vite-bundled syntax grammar chunk for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-BnDQIPI3.js | AI (source-diff): Vite-bundled syntax grammar chunk for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-ZUiNLWbC.js | AI (source-diff): Vite-bundled syntax grammar chunk for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-BaP49KY_.js | AI (source-diff): Vite-bundled syntax grammar chunk for editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-BdFnD7bq.js | AI (source-diff): Vite-bundled syntax grammar chunk for editor; minified JSON data, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DRDEz8zH.js | AI (source-diff): Standard Vite-minified React bundle; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Be2Tek8c.js | AI (source-diff): Standard Vite-minified React bundle chunk; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Be2Tek8c.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are expected; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-Bg9RXSkr.js | AI (source-diff): Minified syntax grammar bundle for code editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-CHYX8HLb.js | AI (source-diff): Minified syntax grammar bundle for code editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-QI00l96i.js | AI (source-diff): Minified syntax grammar bundle for code editor. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade--VnCk-A6.js | AI (source-diff): False positive on minified editor grammar bundle; no actual network+exec dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-CI_SkCGB.js | AI (source-diff): Minified syntax grammar bundle for code editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-d1g7ybSA.js | AI (source-diff): Minified syntax grammar bundle for code editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-2cc1BbkB.js | AI (source-diff): Minified syntax grammar bundle for code editor; stable pattern across all language files in this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-BbLJ84N8.js | AI (source-diff): Minified editor theme bundle. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/blade--VnCk-A6.js | AI (source-diff): Minified syntax grammar bundle for code editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-Dq5tgByc.js | AI (source-diff): Minified syntax grammar bundle for code editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-CAnY45e3.js | AI (source-diff): Minified syntax-highlighting grammar bundle; standard output for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-CaBDEifK.js | AI (source-diff): False positive; file is a minified language grammar bundle, not a dropper. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DawyswNY.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DawyswNY.js | AI (source-diff): Network calls + dynamic execution in a browser React bundle is expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-C-Dch0c6.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-_jT1VxiW.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-DfwFUstD.js | AI (source-diff): False positive on Vite-bundled grammar chunk; no actual network+exec dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/blade-DfwFUstD.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-CseIe6Wm.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-RppVXX0u.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-cdCZVoNN.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-CNjM48tD.js | AI (source-diff): Vite-bundled editor theme chunk; minified JSON color data. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-BxtkPBPz.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-CwyTPb6-.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-BAmorRhB.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data, not obfuscated malicious code. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-0b_DJrZm.js | AI (source-diff): Sentry debug-ID injection + grammar JSON; not a dropper/loader pattern. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-DG-n11Qp.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-gDwx-vJw.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-DvD2_e_4.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-C9IHUjJY.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-DGLKWBma.js | AI (source-diff): Vite-bundled editor theme chunk; minified JSON data, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-Boo_YNJj.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-vT_p7Tly.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-D7wUwtE7.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/blade-0b_DJrZm.js | AI (source-diff): Vite-bundled syntax grammar chunk; minified JSON data, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-COZ7Jw2g.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-COZ7Jw2g.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal SPA patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Dk-2iUAA.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DjJQjkg-.js | AI (source-diff): Standard Vite-minified React bundle; consistent with this package's browser editor build. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-5GPYBNR_.js | AI (source-diff): Network calls and dynamic code in a browser bundle are normal React/Vite patterns; no dropper behavior evident. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-5GPYBNR_.js | AI (source-diff): Standard Vite-minified React bundle; consistent with this package's browser editor build. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-D_OACd_q.js | AI (source-diff): Network calls and dynamic code in a browser bundle are normal React/Vite app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-D_OACd_q.js | AI (source-diff): Standard Vite-minified frontend bundle for a web editor; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-4RYhIFO8.js | AI (source-diff): Standard Vite-minified frontend bundle for a web editor; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-jaycBaB1.js | AI (source-diff): Standard Vite-minified React bundle; consistent pattern across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-jaycBaB1.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BHnMDGbf.js | AI (source-diff): Standard Vite-minified React bundle; consistent pattern across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DlF4Z1Xh.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DlF4Z1Xh.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal SPA behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Dt8D0xOi.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-DUM59O1_.js | AI (source-diff): Vite-minified editor theme chunk; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-BeMGlPPo.js | AI (source-diff): Vite-minified syntax grammar chunk; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-tQmm-buJ.js | AI (source-diff): Vite-minified syntax grammar chunk; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-DBQnJDM_.js | AI (source-diff): Vite-minified syntax grammar chunk; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-CcatE3Bw.js | AI (source-diff): Sentry debug-ID injection + grammar JSON; standard Vite build artifact, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-CCDfq_Nl.js | AI (source-diff): Vite-minified syntax grammar chunk; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-BX0NoMEn.js | AI (source-diff): Vite-minified syntax grammar chunk; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-CkQpu4X9.js | AI (source-diff): Vite-minified syntax grammar chunk; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-C88d2di4.js | AI (source-diff): Vite-minified syntax grammar chunk; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-if02qhm9.js | AI (source-diff): Standard Vite/Rollup minified browser bundle; React internals visible in sample. Expected for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Ck3VCUt-.js | AI (source-diff): Network + dynamic code patterns are from React/Vite browser bundle, not dropper malware. Stable for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Ck3VCUt-.js | AI (source-diff): Standard Vite/Rollup minified browser bundle; React internals visible in sample. Expected for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-BhVpOMfW.js | AI (source-diff): Minified syntax-grammar bundle for code editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-BVWMqLD-.js | AI (source-diff): Minified syntax-grammar bundle for code editor; consistent pattern across all language files. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-C5_Jwf4_.js | AI (source-diff): Minified syntax-grammar bundle for code editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-D7tUI0aN.js | AI (source-diff): Minified editor theme bundle. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-CBh_3ikR.js | AI (source-diff): Minified syntax-grammar bundle for code editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-akn7M-iY.js | AI (source-diff): Minified syntax-grammar bundle for code editor. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-DJfqv5b9.js | AI (source-diff): False positive: Sentry debug-ID IIFE + static JSON grammar data, no actual network fetch or eval of remote code. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/blade-DJfqv5b9.js | AI (source-diff): Minified syntax-grammar bundle; net-exec finding is Sentry debug ID + grammar JSON, not a dropper. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-DpsTaGij.js | AI (source-diff): Minified syntax-grammar bundle for code editor. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-DnKFc4QS.js | AI (source-diff): Minified syntax-grammar bundle for code editor. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-DY2NVBx4.js | AI (source-diff): False positive: file is a Vite-bundled syntax grammar, not a dropper/loader. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CzvhdISZ.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CzvhdISZ.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CQMcYZDM.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-mfMuiA7_.js | AI (source-diff): Standard Vite-minified React SPA bundle; consistent with package's established build pattern. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DvXnbfdC.js | AI (source-diff): Standard Vite-minified React SPA bundle; consistent with package's established build pattern. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DvXnbfdC.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are normal; no dropper/loader indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-DKvBxKuo.js | AI (source-diff): Minified syntax grammar bundle; content is JSON language definitions, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-Cbt14DZd.js | AI (source-diff): Minified editor theme bundle; standard build artifact. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-DQ21Pgkr.js | AI (source-diff): Minified syntax grammar bundle; standard build artifact for editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-BXxzGs0x.js | AI (source-diff): Minified syntax grammar bundle; standard build artifact for editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/blade-B-7kvFt_.js | AI (source-diff): Minified syntax grammar bundle; standard build artifact for editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-B-7kvFt_.js | AI (source-diff): False positive; file is a minified syntax grammar bundle, not a dropper/loader. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-DU376sKm.js | AI (source-diff): Minified syntax grammar bundle; standard build artifact for editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-Bk1xn-aQ.js | AI (source-diff): Minified syntax grammar bundle; standard build artifact for editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-DIiQOEFS.js | AI (source-diff): Minified syntax grammar bundle; standard build artifact for editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-DzRDVpAF.js | AI (source-diff): Minified syntax grammar bundle; standard build artifact for editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-pgjdFGqi.js | AI (source-diff): Vite-minified frontend bundle; standard for this package's build pipeline. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CXtCvFI_.js | AI (source-diff): Vite-minified frontend bundle; standard for this package's build pipeline. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CXtCvFI_.js | AI (source-diff): React SPA bundle with fetch calls; not dropper malware — stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-C-Q-T2fS.js | AI (source-diff): Minified Vite build output for editor theme. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-DmYA1su_.js | AI (source-diff): Minified Vite build output for syntax highlighter grammar. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-Bko-uQTZ.js | AI (source-diff): Minified Vite build output for syntax highlighter grammar. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-CJunLY62.js | AI (source-diff): Minified Vite build output for syntax highlighter grammar. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-CHMnRIks.js | AI (source-diff): Minified Vite build output for syntax highlighter grammar. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-JEf4OA10.js | AI (source-diff): Minified Vite build output for syntax highlighter grammar; stable pattern for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-DfKhtn91.js | AI (source-diff): False positive; file is a minified syntax highlighter grammar bundle, not a dropper. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-DJyK3gXr.js | AI (source-diff): Minified Vite build output for syntax highlighter grammar. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-BaUoBcKL.js | AI (source-diff): Minified Vite build output for syntax highlighter grammar. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-Cq8aRsbQ.js | AI (source-diff): Minified editor theme bundle; standard build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-BrGt8ss0.js | AI (source-diff): False positive on minified grammar chunk; no actual network+exec dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/blade-BrGt8ss0.js | AI (source-diff): Minified syntax-highlighting grammar bundle; standard build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-CrbqkSW4.js | AI (source-diff): Minified syntax-highlighting grammar bundle; standard build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-B0rfi-rr.js | AI (source-diff): Minified syntax-highlighting grammar bundle; standard build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-Zy5n1UXV.js | AI (source-diff): Minified syntax-highlighting grammar bundle; standard build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-yFSMcSVV.js | AI (source-diff): Minified syntax-highlighting grammar bundle; standard build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-CSi7T9sH.js | AI (source-diff): Minified syntax-highlighting grammar bundle; standard build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-iVAzt8Uh.js | AI (source-diff): Minified syntax-highlighting grammar bundle; standard build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-LAA5Q1nB.js | AI (source-diff): Minified syntax-highlighting grammar bundle; standard build output for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BabPdc4s.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BhtOUtQY.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BhtOUtQY.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CsAdiRSL.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-D9PsQ1ph.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-D9PsQ1ph.js | AI (source-diff): Network calls and dynamic code in a browser SPA bundle are expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-757hfBCV.js | AI (source-diff): Standard Vite-minified React bundle; not obfuscated malware. Stable pattern for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-757hfBCV.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; no dropper behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CEeJujre.js | AI (source-diff): Standard Vite-minified React bundle; not obfuscated malware. Stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DanCnmgw.js | AI (source-diff): Standard Vite-minified React bundle; minified frontend output is expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-C5PAb1yF.js | AI (source-diff): Standard Vite-minified React bundle; minified frontend output is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-C5PAb1yF.js | AI (source-diff): Network calls and dynamic code in a bundled React app are normal; no dropper/loader pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CFwj39Tu.js | AI (source-diff): Standard Vite-minified React/Sentry bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BUfU2ksK.js | AI (source-diff): Network calls and dynamic module loading are expected in a Vite-bundled SPA editor; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BUfU2ksK.js | AI (source-diff): Standard Vite-minified React bundle; benign minification pattern stable for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BQKJ_D87.js | AI (source-diff): Standard Vite-minified frontend bundle for a web editor; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DoDBCSQj.js | AI (source-diff): Network calls and dynamic execution are normal in a bundled React SPA; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DoDBCSQj.js | AI (source-diff): Standard Vite-minified frontend bundle for a web editor; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-MV4AhSU8.js | AI (source-diff): Network calls and dynamic code in a bundled React SPA are expected; no dropper/loader indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-MV4AhSU8.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-a3Nft2gN.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DvsKfrGF.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-JDetHk-f.js | AI (source-diff): Network calls and dynamic execution are expected in a bundled browser app (React, Sentry, Vite); not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-JDetHk-f.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-B5VtqSYQ.js | AI (source-diff): Network calls and dynamic code in a bundled React SPA are expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-B5VtqSYQ.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-rITgDRus.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-qYa5SjqM.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CCDJchZQ.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-qYa5SjqM.js | AI (source-diff): Network calls and dynamic code in a browser bundle are normal React/Vite patterns; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CGvhRdG7.js | AI (source-diff): Vite-minified React bundle; standard output for this package's frontend build pipeline. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CGvhRdG7.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DB4ugrNM.js | AI (source-diff): Vite-minified React bundle; standard output for this package's frontend build pipeline. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CJoFkbZ1.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this package's frontend dist output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-yG94dk5k.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this package's frontend dist output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-yG94dk5k.js | AI (source-diff): Network calls and dynamic code in a bundled browser SPA are normal; no dropper pattern evident in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-EVLvpEg4.js | AI (source-diff): Standard Vite/React minified bundle; consistent with this package's build pipeline across versions. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CcWY5h-O.js | AI (source-diff): Standard Vite/React minified bundle; consistent with this package's build pipeline across versions. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CcWY5h-O.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are expected; no dropper/loader indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DGgtsZ5F.js | AI (source-diff): Standard Vite-minified React bundle; not obfuscated malware. Stable pattern for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DGgtsZ5F.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; no dropper behavior evident. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-29U-Eszj.js | AI (source-diff): Standard Vite-minified React bundle; not obfuscated malware. Stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-DWs20H65.js | AI (source-diff): Vite-bundled shiki language grammar chunk. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-BiAiiX5o.js | AI (source-diff): Vite-bundled shiki language grammar chunk. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-CEzyDzGu.js | AI (source-diff): Vite-bundled shiki language grammar chunk. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-B7vDsM33.js | AI (source-diff): Vite-bundled shiki language grammar chunk. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-CWLUMutL.js | AI (source-diff): Vite-bundled shiki language grammar chunk. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-Bp2tQu2A.js | AI (source-diff): Vite-bundled shiki theme chunk. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-C4YeAR1I.js | AI (source-diff): Vite-bundled shiki language grammar chunk; minification is expected for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-CLU61xoh.js | AI (source-diff): Vite-bundled shiki language grammar chunk. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-D72S12MQ.js | AI (source-diff): False positive on minified shiki grammar bundle; no actual network+exec payload. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/blade-D72S12MQ.js | AI (source-diff): Vite-bundled shiki language grammar chunk; minification expected. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CxoTSlUz.js | AI (source-diff): Network calls and dynamic code in a frontend bundle are normal React/Vite patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CxoTSlUz.js | AI (source-diff): Standard Vite-minified React bundle; consistent with this package's established build pattern. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Bk0JxL8h.js | AI (source-diff): Standard Vite-minified React bundle; consistent with this package's established build pattern. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CUpwd-xz.js | AI (source-diff): Network calls and dynamic code in a bundled React SPA are normal; no dropper/loader indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CUpwd-xz.js | AI (source-diff): Standard Vite-bundled frontend output; minified React/Sentry code is expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DDowwNZO.js | AI (source-diff): Standard Vite-bundled frontend output; minified React/Sentry code is expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-OkTxG1_B.js | AI (source-diff): Vite-bundled language grammar chunk; minification is expected. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-BNFTJIbn.js | AI (source-diff): Minified Vite bundle for Blade language grammar; no actual network+exec malware pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-K5ZXdxHA.js | AI (source-diff): Vite-bundled language grammar chunk; minification is expected. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-Dx-OCY_R.js | AI (source-diff): Vite-bundled language grammar chunk; minification is expected. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-CdsVswDI.js | AI (source-diff): Vite-bundled language grammar chunk; minification is expected. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-qn1jn8XL.js | AI (source-diff): Vite-bundled language grammar chunk; minification is expected. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-CgPQJwMH.js | AI (source-diff): Vite-bundled editor theme chunk; minification is expected. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-DOT_Y3zn.js | AI (source-diff): Vite-bundled language grammar chunk; minification is expected. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-CWcxnt5S.js | AI (source-diff): Vite-bundled language grammar chunk; minification is expected for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/abap-D5qCCwNT.js | AI (source-diff): Minified Shiki language grammar bundle; consistent pattern across all language files in this editor package. | ai | |
| source-diff | large-new-source-files | AI (source-diff): Editor package legitimately ships many language/theme grammar chunks; growth reflects expanded Shiki language support. | ai | |
| source-diff | net-exec-file:dist/client/static/js/blade-eSNP0wQp.js | AI (source-diff): False positive on minified editor language grammar; no actual network+exec dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/blade-eSNP0wQp.js | AI (source-diff): Minified Shiki language grammar bundle; same pattern as all other language files. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apex-C1FWho3k.js | AI (source-diff): Minified Shiki language grammar bundle. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/apache-DcrAKLqT.js | AI (source-diff): Minified Shiki language grammar bundle. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-ts-CkT2MB0t.js | AI (source-diff): Minified Shiki language grammar bundle. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/angular-html-DzTbCeN2.js | AI (source-diff): Minified Shiki language grammar bundle. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/andromeeda-D2VwtTAi.js | AI (source-diff): Minified Shiki theme bundle. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/ada-CH5VDjgz.js | AI (source-diff): Minified Shiki language grammar bundle. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/actionscript-3-DlUbq2t6.js | AI (source-diff): Minified Shiki language grammar bundle. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-ShQyZpze.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not obfuscation for malicious purposes. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-ShQyZpze.js | AI (source-diff): Network calls and dynamic code in a Vite-bundled React SPA are expected; no dropper/loader pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CkpMdHQo.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not obfuscation for malicious purposes. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-D400B3ph.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this package's client dist. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Bqw1a7Em.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this package's client dist. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-D400B3ph.js | AI (source-diff): Network calls and dynamic execution are normal in a bundled React SPA; no dropper behavior evident in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DHirZ_qj.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-B_bhNXrl.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DHirZ_qj.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; no dropper pattern present. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BbYp2qEX.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are expected; no dropper behavior visible in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CZA1ciMV.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BbYp2qEX.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-C_rGkhVA.js | AI (source-diff): Standard Vite/Rolldown minified React bundle; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BnNgwijj.js | AI (source-diff): Standard Vite/Rolldown minified React bundle; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BnNgwijj.js | AI (source-diff): Network calls and dynamic code in a bundled React SPA are expected; no dropper pattern present. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BKT_DoZf.js | AI (source-diff): Network calls and dynamic code execution are normal patterns in a bundled React SPA; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DqyKjFxh.js | AI (source-diff): Standard Vite-minified React bundle; obfuscation finding is a false positive for this package's build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BKT_DoZf.js | AI (source-diff): Standard Vite-minified React bundle; obfuscation finding is a false positive for this package's build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Dat6GmlM.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-D4M6cNa3.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Dat6GmlM.js | AI (source-diff): Network+exec pattern is React lazy-loading and Vite dynamic imports in a browser bundle, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-C9ucvs3f.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CNGyvNzB.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are expected; no dropper behavior evident in samples. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CNGyvNzB.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DZJxwT5x.js | AI (source-diff): Standard Vite minified bundle for a React frontend editor; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-D7af4XrJ.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-D7af4XrJ.js | AI (source-diff): Standard Vite minified bundle for a React frontend editor; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-tUvmHJaG.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal SPA behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-tUvmHJaG.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this package's client dist output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-C1amxjvl.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this package's client dist output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BaiA9VE7.js | AI (source-diff): Standard Vite-minified React bundle; consistent with established Zuplo editor release pattern. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BaiA9VE7.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; no dropper indicators in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-2T9VCAZB.js | AI (source-diff): Standard Vite-minified React bundle; consistent with established Zuplo editor release pattern. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BNGiSt5j.js | AI (source-diff): Standard Vite-bundled React app output; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CtvUScEH.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern evident in samples. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CtvUScEH.js | AI (source-diff): Standard Vite-bundled React app output; minification is expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Bte-hi1T.js | AI (source-diff): Standard Vite-minified frontend bundle; minification is expected for this editor SPA package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Bte-hi1T.js | AI (source-diff): Network calls and dynamic code in a browser SPA bundle are normal React/Vite patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-D7mtU7gx.js | AI (source-diff): Standard Vite-minified frontend bundle; minification is expected for this editor SPA package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-mFx3jSwg.js | AI (source-diff): Standard Vite-minified React bundle; not obfuscated malware. Stable pattern for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-mFx3jSwg.js | AI (source-diff): Network calls and dynamic code execution are normal in a React SPA bundle (lazy imports, fetch). Not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-B_dP0DtU.js | AI (source-diff): Standard Vite-minified React bundle; not obfuscated malware. Stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CIqWqp-I.js | AI (source-diff): Standard Vite-minified frontend bundle; Sentry debug IDs and React code confirm legitimate build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CIqWqp-I.js | AI (source-diff): Network+exec pattern is from bundled React/Vite frontend app, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BMgJadKf.js | AI (source-diff): Standard Vite-minified frontend bundle; React internals visible in sample confirm legitimate build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BtCW-ui-.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BtCW-ui-.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CrLXCY0x.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DT5NzxKB.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BvOtloqK.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BvOtloqK.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CE7GwJZa.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CE7GwJZa.js | AI (source-diff): Network calls and dynamic execution are React/Sentry/Vite patterns in a browser bundle, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Dxmwg7Qd.js | AI (source-diff): Standard Vite-minified React bundle; minified dist output is expected for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Dn7xY7PK.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Dn7xY7PK.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DueiKSQW.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CSEfQD0c.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable for this package's build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CSEfQD0c.js | AI (source-diff): Network calls and dynamic code are React/Vite bundle patterns (module preload, lazy loading), not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Dd3rhAC3.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable for this package's build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BJ6BjUIv.js | AI (source-diff): Standard Vite-bundled frontend output; minification is expected for this package's client build. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CTUWA9CP.js | AI (source-diff): Network calls and dynamic execution are React/Vite SPA patterns (module preload, lazy imports); not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CTUWA9CP.js | AI (source-diff): Standard Vite-bundled frontend output; minification is expected for this package's client build. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BtdK038g.js | AI (source-diff): Network calls and dynamic execution are normal in a bundled React SPA; no dropper behavior evident in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-grIkTdpI.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BtdK038g.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DKCM6HeY.js | AI (source-diff): Network+exec pattern is from bundled React app code, not dropper malware; consistent with a local dev editor UI. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DKCM6HeY.js | AI (source-diff): Standard Vite-minified frontend bundle; React component code clearly visible in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-E7Rjp5xb.js | AI (source-diff): Standard Vite-minified frontend bundle; Sentry debug IDs and React internals confirm legitimate build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-xTKoGjjm.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CYBSssTq.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CYBSssTq.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-ete-4ehy.js | AI (source-diff): Standard Vite-minified React bundle; filename hash changes each release by design. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-oPpDkBgT.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-oPpDkBgT.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-B3nXrHj_.js | AI (source-diff): Standard Vite/Rolldown minified frontend bundle; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-TyW2slha.js | AI (source-diff): Network calls and dynamic code in a bundled React app are expected; no dropper behavior evident. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-TyW2slha.js | AI (source-diff): Standard Vite/Rolldown minified frontend bundle; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Blzv70Al.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Blzv70Al.js | AI (source-diff): Standard Vite-minified frontend bundle for a web editor; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-kXknx14Z.js | AI (source-diff): Standard Vite-minified frontend bundle for a web editor; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-MzY8AFFD.js | AI (source-diff): Standard Vite/React minified build output; expected artifact for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CRx55Apg.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are normal; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CRx55Apg.js | AI (source-diff): Standard Vite/React minified build output; expected artifact for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-weegP-Rj.js | AI (source-diff): Network calls and dynamic code in a bundled React app are normal; no dropper pattern present in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-weegP-Rj.js | AI (source-diff): Standard Vite/Rolldown minified React bundle; expected output for this editor UI package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BQrdnD-8.js | AI (source-diff): Standard Vite/Rolldown minified React bundle; expected output for this editor UI package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-WJ5oe5_-.js | AI (source-diff): Standard Vite/Rolldown minified SPA bundle with Sentry debug IDs; expected artifact for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-WJ5oe5_-.js | AI (source-diff): Network+exec pattern is from bundled React/Sentry code in a frontend SPA build; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-OMsuCQpq.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CqOOIVns.js | AI (source-diff): Network calls and dynamic code in a browser bundle are normal React/Sentry patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CqOOIVns.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BtPJHAcR.js | AI (source-diff): Standard Vite-minified frontend bundle; consistent with this package's editor build pattern. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DoDyKSX2.js | AI (source-diff): Network calls and dynamic execution are React/Vite bundle patterns (lazy loading, Sentry), not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DoDyKSX2.js | AI (source-diff): Standard Vite-minified frontend bundle; consistent with this package's editor build pattern. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-6va7uJx7.js | AI (source-diff): Network calls and dynamic code in a Vite/React bundle are normal browser app behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-6va7uJx7.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Og9N9sIz.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CrnuD2q3.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CrnuD2q3.js | AI (source-diff): Normal browser JS with ES module imports and fetch; not dropper behavior. Stable for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-C1Fu4UsH.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BXp2tUKw.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal SPA patterns; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Bso27OUl.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BXp2tUKw.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CEkoCoMw.js | AI (source-diff): Network calls and dynamic execution are normal in a bundled React SPA; no dropper behavior evident in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Bxuhfs-O.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this package's client dist output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CEkoCoMw.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this package's client dist output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-JB3vb_zY.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-JB3vb_zY.js | AI (source-diff): Standard Vite-minified frontend bundle; expected artifact for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-3W3jTNMp.js | AI (source-diff): Standard Vite-minified frontend bundle; expected artifact for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DsfntSlL.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DsfntSlL.js | AI (source-diff): Network calls and dynamic execution are normal React/Vite SPA patterns; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-aZ5LERKs.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CKc0viE2.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-xuSbck_6.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are normal; no dropper pattern visible in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-xuSbck_6.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-B53bu748.js | AI (source-diff): Standard Vite-minified React bundle; obfuscation is expected for this frontend editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BEZP4Kgr.js | AI (source-diff): Standard Vite-minified React bundle; obfuscation is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-B53bu748.js | AI (source-diff): Network calls and dynamic code in a bundled React/Sentry frontend are normal; no dropper behavior evident in samples. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CMLVjOZQ.js | AI (source-diff): Network+exec pattern is from bundled React/Fastify frontend code, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CMLVjOZQ.js | AI (source-diff): Standard Vite/Rolldown minified React bundle; Sentry debug IDs confirm legitimate build toolchain. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BVoG1yxG.js | AI (source-diff): Standard Vite-minified React bundle; recognizable React internals confirm legitimate build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CFh_-mjV.js | AI (source-diff): Standard Vite-minified React/Sentry bundle; minification is expected for this client-side editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BVoG1yxG.js | AI (source-diff): Network calls and dynamic code in a browser bundle are normal React/Vite patterns; no dropper indicators in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-5atwRVrD.js | AI (source-diff): Standard Vite-minified frontend bundle; React/Sentry internals visible in sample, not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CgnEQ9ou.js | AI (source-diff): Network+exec pattern is browser-side React app code (fetch + dynamic imports), not a dropper/loader. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CgnEQ9ou.js | AI (source-diff): Standard Vite-minified frontend bundle; React internals clearly visible in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-otSUr2B3.js | AI (source-diff): Standard Vite-minified React/Sentry bundle; pattern is stable across versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BYybR7IL.js | AI (source-diff): Standard Vite-minified React/Sentry bundle; pattern is stable across versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BYybR7IL.js | AI (source-diff): Network calls and dynamic code in a Vite-bundled React SPA are expected; no dropper behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-VYMx0UyV.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-IpQ0yCcj.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-IpQ0yCcj.js | AI (source-diff): Network calls and dynamic code in a Vite/React bundle are expected; no dropper/loader pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DrCLjlOk.js | AI (source-diff): Standard Vite/rolldown minified React bundle; consistent pattern across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Ds0JWZRc.js | AI (source-diff): Network calls and dynamic code execution are normal React SPA patterns (fetch + dynamic imports); not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Ds0JWZRc.js | AI (source-diff): Standard Vite/rolldown minified React bundle; consistent pattern across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CV9KWftn.js | AI (source-diff): Network+exec pattern fires on bundled React app code; no actual dropper behavior present in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CV9KWftn.js | AI (source-diff): Standard Vite/React minified bundle; Sentry debug IDs and React JSX runtime confirm legitimate build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-D1vV7x5X.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DEjn56tk.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-D1vV7x5X.js | AI (source-diff): Network calls and dynamic code in a browser UI bundle are expected; no dropper behavior evident in samples. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BoDiCU2Y.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BoDiCU2Y.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Bz5Fxti-.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BmkWEutl.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-D-cDzbzi.js | AI (source-diff): Vite-bundled React/Sentry frontend bundle; minification is expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BmkWEutl.js | AI (source-diff): Vite-bundled React/Sentry frontend bundle; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-C0iQ9vwW.js | AI (source-diff): Network+eval pattern is from bundled React/Vite runtime, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-eLx3NbcU.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-C0iQ9vwW.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CYg3Rw0S.js | AI (source-diff): Network calls and dynamic code in a React/Vite browser bundle are normal UI patterns, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BwWqmLaS.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CYg3Rw0S.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BbVn_J0U.js | AI (source-diff): Vite-minified React frontend bundle; expected artifact for this package on every release. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BZ2k6s7a.js | AI (source-diff): Network calls and dynamic module loading are standard React/Vite SPA patterns; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BZ2k6s7a.js | AI (source-diff): Vite-minified React frontend bundle; expected artifact for this package on every release. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CzlssIol.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BTHgjwoc.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BTHgjwoc.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-IzH75iBU.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-IzH75iBU.js | AI (source-diff): Network calls and dynamic code in a browser JS bundle are normal React app behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Bul63Fbq.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BX5_HddH.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this editor UI package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Jw946GfF.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this editor UI package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Jw946GfF.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-0WCFCMfK.js | AI (source-diff): Standard Vite-bundled React frontend output; minification is expected for this editor UI package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-C6HM-kjF.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are normal; no dropper/loader indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-C6HM-kjF.js | AI (source-diff): Standard Vite-bundled React frontend output; minification is expected for this editor UI package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DxHteiu4.js | AI (source-diff): Network calls and dynamic code in a Vite React bundle are normal; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DxHteiu4.js | AI (source-diff): Standard Vite-minified frontend bundle; content shows React/Sentry internals, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-C1xLTW6-.js | AI (source-diff): Standard Vite-minified frontend bundle; content shows React/Sentry internals, not malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Dpr4jh5M.js | AI (source-diff): Network+exec pattern is bundled React/fetch in a frontend build artifact, not a dropper. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Dpr4jh5M.js | AI (source-diff): Standard Vite/Rolldown minified React bundle with Sentry debug IDs; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Dlio3gsN.js | AI (source-diff): Network+exec pattern is browser-side React app code (dynamic imports, fetch), not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DMSEnM34.js | AI (source-diff): Standard Vite-minified frontend bundle; React/Sentry internals visible in sample, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Dlio3gsN.js | AI (source-diff): Standard Vite-minified frontend bundle; React internals visible in sample, not malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CeMlbETL.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BA0Hf2Tu.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CeMlbETL.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BoMd3-xS.js | AI (source-diff): Network calls and dynamic code in a Vite-bundled React app are normal; no dropper/loader indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-s3prwp5L.js | AI (source-diff): Standard Vite-minified frontend bundle; Sentry debug IDs and React internals confirm legitimate build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BoMd3-xS.js | AI (source-diff): Standard Vite-minified frontend bundle; Sentry debug IDs and React internals confirm legitimate build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-C3Wze7kl.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; pattern is stable across versions. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-C3Wze7kl.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper behavior visible in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-l9j0FTc_.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; pattern is stable across versions. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DBzmh-N7.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DBzmh-N7.js | AI (source-diff): Network calls and dynamic execution are normal in a bundled React SPA; no dropper behavior evident in samples. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CQwh9mcD.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CQ6hIta5.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CQ6hIta5.js | AI (source-diff): Standard Vite-minified frontend bundle; not obfuscation, consistent with this package's build pipeline. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DQpWuMPE.js | AI (source-diff): Standard Vite-minified frontend bundle; not obfuscation, consistent with this package's build pipeline. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Db70SL71.js | AI (source-diff): Standard Vite-minified React bundle; pattern is consistent across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DWyGNVHL.js | AI (source-diff): Standard Vite-minified React bundle; pattern is consistent across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Db70SL71.js | AI (source-diff): Network calls and dynamic code in a frontend React bundle are expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Cz2tXOje.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CYQ_PqcT.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Cz2tXOje.js | AI (source-diff): Network calls and dynamic execution are React/Vite bundle patterns (module preload, lazy imports); not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Cgii-lEy.js | AI (source-diff): Standard Vite-minified frontend bundle; React internals and Sentry IDs confirm legitimate build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Cgii-lEy.js | AI (source-diff): Network calls and dynamic code in a browser bundle are expected for a React SPA; no dropper behavior evident. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CxW3iTeH.js | AI (source-diff): Standard Vite-minified frontend bundle for a web editor; pattern is stable across versions. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BAw0rXcY.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this client-side editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-dwvhYqsq.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper/loader pattern present in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-dwvhYqsq.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this client-side editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BiuBRJCn.js | AI (source-diff): Standard Vite-minified browser bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CeMY-Ux9.js | AI (source-diff): Standard Vite-minified browser bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BiuBRJCn.js | AI (source-diff): Browser bundle combining fetch and dynamic imports is normal for a React SPA; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CWMw6RKT.js | AI (source-diff): Standard Vite-minified React bundle; long lines are expected build output, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DG9xUPnN.js | AI (source-diff): Network calls and dynamic code in a frontend bundle are normal React/Vite patterns (fetch, dynamic import), not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DG9xUPnN.js | AI (source-diff): Standard Vite-minified React bundle; long lines are expected build output, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DO3zm5jj.js | AI (source-diff): Standard Vite-minified frontend bundle; not obfuscated malware. Stable pattern for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DkyT5GyX.js | AI (source-diff): Network+exec pattern is from bundled React/Vite frontend code, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DkyT5GyX.js | AI (source-diff): Standard Vite-minified frontend bundle with Sentry debug IDs and React symbols; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BhJtA1wV.js | AI (source-diff): Network calls and dynamic code in a Vite/React frontend bundle are expected; no dropper behavior visible in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BhJtA1wV.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CDDfLj-9.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DGpkLviw.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DGpkLviw.js | AI (source-diff): Vite-minified React bundle; standard build output for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CtW3McS1.js | AI (source-diff): Vite-minified React/Sentry bundle; standard build output for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-B52fzWd_.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this web editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Cczl9O4j.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this web editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Cczl9O4j.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are normal; no dropper behavior evident in samples. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BfdnCa89.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Cli6jXeg.js | AI (source-diff): Network+exec pattern is React lazy-loading and Sentry telemetry in a Vite bundle; no dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Cli6jXeg.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-tlOLLnH5.js | AI (source-diff): Standard Vite-minified frontend bundle; content is React/Sentry boilerplate, not malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-B0I1HXaX.js | AI (source-diff): Network calls and dynamic code in a Vite-bundled React app are expected; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-B0I1HXaX.js | AI (source-diff): Standard Vite-minified frontend bundle; content is React/Sentry boilerplate, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CYUxJKmt.js | AI (source-diff): Standard Vite-minified frontend bundle with Sentry debug IDs; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Cxul6fJl.js | AI (source-diff): Network calls and dynamic code in a Vite-bundled React app are expected; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Cxul6fJl.js | AI (source-diff): Standard Vite-minified frontend bundle with React symbols and Sentry debug IDs; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DhBN0nt1.js | AI (source-diff): Standard Vite-minified frontend bundle; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CY9endJL.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CY9endJL.js | AI (source-diff): Standard Vite-minified frontend bundle with Sentry instrumentation; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BvixIzPk.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BeP6yNh6.js | AI (source-diff): Standard Vite-minified React frontend bundle; minification is expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BvixIzPk.js | AI (source-diff): Standard Vite-minified React frontend bundle; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BSWTsD7o.js | AI (source-diff): Network calls and dynamic execution are React/Sentry framework patterns in a bundled client app, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BSWTsD7o.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-D2tyYqoe.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Dbpm-diO.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Dbpm-diO.js | AI (source-diff): Standard Vite-minified frontend bundle; expected artifact for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CGh4QN5Z.js | AI (source-diff): Standard Vite-minified frontend bundle; expected artifact for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BXH6mfJD.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CBOS5GP_.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CBOS5GP_.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CKfVkql9.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are expected; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-B2VZcwW0.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CKfVkql9.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-B7xsWNyv.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-B21XMhkM.js | AI (source-diff): Vite-minified React/Sentry bundle; minification is expected for this editor package's client dist. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-B7xsWNyv.js | AI (source-diff): Vite-minified React bundle; standard build artifact for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-C0aBMs8-.js | AI (source-diff): Vite-minified frontend bundle; standard build artifact for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CcNuhm8r.js | AI (source-diff): Vite-minified frontend bundle; standard build artifact for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-C0aBMs8-.js | AI (source-diff): Network calls and dynamic execution are React/Vite bundle patterns, not dropper behavior. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local--r2eNo28.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local--r2eNo28.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BrlYtuu8.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-ptqBxMjy.js | AI (source-diff): Standard Vite-minified frontend bundle; not obfuscated malware. Stable pattern for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BbrANAhd.js | AI (source-diff): Network calls and dynamic code in a Vite/React bundle are normal SPA patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BbrANAhd.js | AI (source-diff): Standard Vite-minified frontend bundle with Sentry debug IDs and React internals; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-LyQ9YRvv.js | AI (source-diff): Standard Vite-minified React bundle; consistent with this package's web editor build output across versions. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CnMW6AgE.js | AI (source-diff): Standard Vite-minified React bundle; consistent with this package's web editor build output across versions. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CnMW6AgE.js | AI (source-diff): Network calls and dynamic execution are expected in a bundled React SPA with Sentry integration; not dropper behavior. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DBR5tMO1.js | AI (source-diff): Network calls and dynamic code in a frontend React bundle are normal; no dropper behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DGmFxYdW.js | AI (source-diff): Standard Vite-minified React bundle; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DBR5tMO1.js | AI (source-diff): Standard Vite-minified React bundle with Sentry integration; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CRP0L4jR.js | AI (source-diff): Network calls and dynamic module loading are normal in a Vite-bundled SPA; no dropper behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BC7UEeLk.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CRP0L4jR.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Ds1P1EDS.js | AI (source-diff): Standard Vite-minified frontend bundle; not obfuscation, just minified React/Sentry output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-D-V_ZRcS.js | AI (source-diff): Network calls and dynamic code in a browser UI bundle are normal React app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-D-V_ZRcS.js | AI (source-diff): Standard Vite-minified frontend bundle; not obfuscation, just minified React/Sentry output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Cw_zk5Ed.js | AI (source-diff): Standard Vite-minified frontend bundle for a web editor; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Cw_zk5Ed.js | AI (source-diff): React SPA bundle; network calls and dynamic eval are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-2J96Rtsz.js | AI (source-diff): Standard Vite-minified frontend bundle for a web editor; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-kkFyBrE9.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-kkFyBrE9.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; not a dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BvoIr7yw.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DEfWBjkM.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this web editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Di7-KePg.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper behavior evident in samples. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Di7-KePg.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this web editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-lqMqzAX8.js | AI (source-diff): Standard Vite-minified frontend bundle; React/Sentry patterns confirm legitimate build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Cb3jLrxb.js | AI (source-diff): Network+exec pattern is from bundled React app (dynamic imports, fetch); not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Cb3jLrxb.js | AI (source-diff): Standard Vite-minified frontend bundle; React/Sentry patterns confirm legitimate build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CzXPsApm.js | AI (source-diff): Network calls and dynamic execution are normal React SPA behavior (fetch APIs, dynamic imports); not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-2pKp_1_R.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CzXPsApm.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CCSfhnEM.js | AI (source-diff): Standard Vite-minified React bundle; Sentry debug IDs and React symbols confirm legitimate build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-C0zGnQyN.js | AI (source-diff): Network calls and dynamic execution are part of normal React SPA bundle behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-C0zGnQyN.js | AI (source-diff): Standard Vite-minified React bundle; Sentry debug IDs and React symbols confirm legitimate build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Cw6Tdtn9.js | AI (source-diff): Standard Vite-minified React bundle; expected artifact for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Bok2FeTD.js | AI (source-diff): Network calls and dynamic module loading are normal browser React app behavior; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Bok2FeTD.js | AI (source-diff): Standard Vite-minified React bundle; expected artifact for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CnO--uPz.js | AI (source-diff): Network+exec pattern is from React/Sentry in a bundled frontend; no dropper behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CnO--uPz.js | AI (source-diff): Standard Vite-minified React bundle; Sentry debug IDs and React JSX runtime confirm legitimate build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-__4wKX54.js | AI (source-diff): Standard Vite-minified frontend bundle; expected artifact for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-__4wKX54.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BvnTqW5W.js | AI (source-diff): Standard Vite-minified frontend bundle; expected artifact for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DvTPQuRd.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-SonvzG7T.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal SPA patterns, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-SonvzG7T.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-7Ox7aUFD.js | AI (source-diff): Vite-bundled React app output; minification is expected for this package's client dist. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-7Ox7aUFD.js | AI (source-diff): Network calls and dynamic code in a bundled React/Sentry SPA are normal; no dropper behavior evident in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-ClcedRNA.js | AI (source-diff): Vite-bundled React app output; minification is expected for this package's client dist. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DFX-QXzF.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BwB-hkQF.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DFX-QXzF.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper/loader pattern present. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-iEHECioU.js | AI (source-diff): Network calls and dynamic code in a Vite-bundled React SPA are expected; no dropper pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-iEHECioU.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-UtHD2-GR.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Bh20vZCp.js | AI (source-diff): Network calls and dynamic code in a Vite/React bundle are normal SPA patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Bh20vZCp.js | AI (source-diff): Standard Vite-minified frontend bundle with React internals; expected artifact for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BrQmWM17.js | AI (source-diff): Standard Vite-minified frontend bundle with Sentry debug IDs; expected artifact for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Bhq03If2.js | AI (source-diff): Network+exec pattern in a bundled web editor frontend is expected; no dropper indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Bhq03If2.js | AI (source-diff): Standard Vite-minified React bundle; Sentry debug IDs and React JSX runtime confirm legitimate build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CYd4BF8I.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CYd4BF8I.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-C5VQHW-f.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-unHLujF6.js | AI (source-diff): Network calls and dynamic execution are normal for a browser SPA bundle; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-vSvgLFcA.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-unHLujF6.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-C3TMdpjY.js | AI (source-diff): Standard Vite-minified React bundle; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BWLTpVOP.js | AI (source-diff): Standard Vite-minified React bundle; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BWLTpVOP.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are expected; no dropper pattern present. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BKtPAaCg.js | AI (source-diff): Network calls and dynamic code in a Vite/React bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-QynkrW5B.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BKtPAaCg.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Cs856GOI.js | AI (source-diff): Standard Vite-minified React bundle; minified output is expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CLPa88pA.js | AI (source-diff): Standard Vite-minified React bundle; minified output is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CLPa88pA.js | AI (source-diff): Network calls and dynamic code in a Vite/React bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-D_Fuz4sl.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-ZGzeOJSw.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-ZGzeOJSw.js | AI (source-diff): Standard Vite-minified frontend bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BrSQNSV5.js | AI (source-diff): Standard Vite/rolldown minified frontend bundle; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BrSQNSV5.js | AI (source-diff): Network+exec pattern is from bundled React/Sentry code in a frontend build artifact, not a dropper. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-D_T4I7Ag.js | AI (source-diff): Network+exec pattern is from bundled React/Sentry code in a frontend build, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-D_T4I7Ag.js | AI (source-diff): Vite-minified React bundle; Sentry debug IDs and React symbols confirm legitimate build artifact. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CpuXkjSz.js | AI (source-diff): Standard Vite/Rolldown minified React bundle; Sentry debug IDs and React symbols confirm legitimate build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CpuXkjSz.js | AI (source-diff): Network+exec pattern is from bundled React/Sentry code in a frontend editor build, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-yzUtpeCi.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-D5pajhb3.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; no dropper behavior evident. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-D5pajhb3.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-C5oztRRW.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; benign for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-C5oztRRW.js | AI (source-diff): Network calls and dynamic code in a Vite/React bundle are expected; no dropper behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DRvMr06O.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BHuvBE6i.js | AI (source-diff): Standard Vite-bundled React app output; minification is expected for this package's client dist. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-HpqMEgJZ.js | AI (source-diff): Standard Vite-bundled React app output; minification is expected for this package's client dist. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-HpqMEgJZ.js | AI (source-diff): Network calls and dynamic execution are React/Sentry runtime patterns in a bundled browser app, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BPgH8dNi.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-ClhC9pPt.js | AI (source-diff): Network calls and dynamic code in a bundled React SPA are expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-ClhC9pPt.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BP_3ZZS9.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BP_3ZZS9.js | AI (source-diff): Network calls and dynamic code in a Vite/React bundle are expected; no dropper/loader pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DsAT-Gif.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-C4jx2O7a.js | AI (source-diff): Network calls and dynamic code in a web editor's bundled frontend are expected; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DzcOAfaD.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-C4jx2O7a.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BC9l7708.js | AI (source-diff): Standard Vite-minified React bundle; consistent pattern across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Czxeh6nK.js | AI (source-diff): Standard Vite-minified React bundle; consistent pattern across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BC9l7708.js | AI (source-diff): Network calls and dynamic execution are normal for a React SPA bundle; no dropper indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-B-zI-fRR.js | AI (source-diff): Standard Vite/Rolldown minified React SPA bundle; long lines are expected for this package's client build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-B-zI-fRR.js | AI (source-diff): Network+exec pattern is from bundled React/Sentry code in a browser SPA bundle, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-0gqgP9_d.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DL0hZsQA.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DL0hZsQA.js | AI (source-diff): Network calls and dynamic module loading are normal in a bundled React SPA; no malicious payload present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BeFLY4vQ.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BeFLY4vQ.js | AI (source-diff): Network+exec pattern is React/Vite client bundle behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-JGbrOjxu.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CzxEbg5K.js | AI (source-diff): Standard Vite-bundled frontend asset; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CzxEbg5K.js | AI (source-diff): Network calls and dynamic code in a Vite/React bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Dg3xVhOg.js | AI (source-diff): Standard Vite-bundled frontend asset; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DXpmI9Uo.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; no dropper/loader pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-B_LlBOkI.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DXpmI9Uo.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-ByzYzDU-.js | AI (source-diff): Vite/Rolldown-bundled React browser bundle; minification is expected and stable for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-ByzYzDU-.js | AI (source-diff): Network+exec pattern is from bundled React/Sentry code in a browser editor; not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CxNvzlHd.js | AI (source-diff): Standard Vite-minified React bundle with Sentry debug IDs; expected build artifact for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CxNvzlHd.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Cdl1Blog.js | AI (source-diff): Standard Vite-bundled frontend output; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Cdl1Blog.js | AI (source-diff): Network calls and dynamic execution are React/Sentry patterns in bundled frontend code, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CfZXy8E8.js | AI (source-diff): Standard Vite-bundled frontend output; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-zeuBh864.js | AI (source-diff): Network calls and dynamic execution are normal browser-side React app behavior in a bundled editor UI. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-zeuBh864.js | AI (source-diff): Standard Vite-minified React bundle; consistent with package purpose across all versions. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BeBs8xQB.js | AI (source-diff): Standard Vite-minified React bundle; consistent with package purpose across all versions. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DPBrrUii.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DPBrrUii.js | AI (source-diff): Network calls and dynamic execution are normal React SPA patterns (fetch + dynamic import); no dropper behavior evident. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BNe13Bt3.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-_RkmEaew.js | AI (source-diff): Vite/Rolldown-minified React frontend bundle; long lines are standard build output for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-_RkmEaew.js | AI (source-diff): Network+exec pattern is from bundled React/Sentry code in a browser UI bundle, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CtMKop9h.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CCfbY0hh.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CCfbY0hh.js | AI (source-diff): Network calls and dynamic code in a Vite/React bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-Bvj0E_uI.js | AI (source-diff): Standard Vite-minified React SPA bundle; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-OJ2dhmNd.js | AI (source-diff): Network calls and dynamic code in a browser SPA bundle are expected React/Vite patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-OJ2dhmNd.js | AI (source-diff): Standard Vite-minified React SPA bundle; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BJx-N9QF.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal SPA patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BX6TgT8r.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BJx-N9QF.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CcRRpQTK.js | AI (source-diff): Network calls and dynamic code in a React SPA bundle are normal; no dropper behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BZaCxQmb.js | AI (source-diff): Standard Vite-minified React bundle; expected output for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CcRRpQTK.js | AI (source-diff): Standard Vite-minified React bundle; expected output for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-C3cQvS20.js | AI (source-diff): Network calls and dynamic patterns are from bundled React/Sentry code, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-C3cQvS20.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CfKHbAFI.js | AI (source-diff): Network calls + dynamic code in a browser React bundle are normal SPA patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-9yVgTDwS.js | AI (source-diff): Standard Vite-minified React bundle; expected artifact for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CfKHbAFI.js | AI (source-diff): Standard Vite-minified React bundle; expected artifact for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BqB2cdGE.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-9tubGc-z.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-9tubGc-z.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are expected; not dropper behavior. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BSRKzLh4.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-0Ezk5L4V.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BSRKzLh4.js | AI (source-diff): Standard Vite-minified frontend bundle for Zuplo editor UI; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BYtBc-RR.js | AI (source-diff): Standard Vite-minified frontend bundle; expected build artifact for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BYtBc-RR.js | AI (source-diff): Network calls and dynamic code in a React/Vite bundle are normal browser app patterns, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DCJWDsPR.js | AI (source-diff): Standard Vite-minified frontend bundle; expected build artifact for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DV-eXEm-.js | AI (source-diff): Vite-bundled React app output; minification is expected for this package's frontend build artifacts. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-nJEZs4Qw.js | AI (source-diff): Vite-bundled React app output; minification is expected for this package's frontend build artifacts. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DV-eXEm-.js | AI (source-diff): Network calls and dynamic code in a bundled React SPA are normal; no dropper pattern present in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-AeAB_gHU.js | AI (source-diff): Standard Vite-minified React bundle; consistent with this package's web editor build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CwyQnmI_.js | AI (source-diff): Network calls and dynamic execution are normal for a bundled React SPA; no dropper indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CwyQnmI_.js | AI (source-diff): Standard Vite-minified React bundle; consistent with this package's web editor build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DtVpD8sT.js | AI (source-diff): Network calls and dynamic code in a browser SPA bundle are normal React/Sentry patterns, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DtVpD8sT.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this package's client dist output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BHmNWMoE.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this package's client dist output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BbyA93ax.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-ChQLnZyX.js | AI (source-diff): Network calls and dynamic code in a browser React bundle are normal; no dropper pattern present in sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-ChQLnZyX.js | AI (source-diff): Standard Vite-minified React bundle; minification is expected for this frontend editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-3KfYi1O1.js | AI (source-diff): Network calls and dynamic module loading are expected in a bundled React SPA; no dropper behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-3KfYi1O1.js | AI (source-diff): Standard Vite-minified React bundle with Sentry instrumentation; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DB6IbcUI.js | AI (source-diff): Standard Vite-minified React bundle; pattern is stable across all versions of this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DEH0qS6E.js | AI (source-diff): Vite-bundled React frontend; minified output is expected for this editor package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DEH0qS6E.js | AI (source-diff): Network calls and dynamic code in bundled client JS are normal for a web editor; no dropper indicators. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-v3trdUKS.js | AI (source-diff): Standard Vite-minified SPA bundle; obfuscation finding is a stable false positive for this package's build output. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-v3trdUKS.js | AI (source-diff): Network+exec pattern is from bundled React/Sentry frontend code, not malware; stable false positive for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CP-9thbK.js | AI (source-diff): Standard Vite/React minified bundle output; consistent with this package's build pipeline across all versions. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CP-9thbK.js | AI (source-diff): Network+exec pattern is React/Sentry boilerplate in a minified client bundle, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-cxNqAgjo.js | AI (source-diff): Standard Vite-bundled React frontend output for Zuplo's editor UI. Minification is expected; samples show React internals and Sentry integration, not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-cxNqAgjo.js | AI (source-diff): Network+exec pattern triggered by React's virtual DOM and standard fetch calls in a legitimate Vite-bundled web editor. Not a dropper/loader pattern. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-B0HOxBvc.js | AI (source-diff): Standard Vite-bundled React frontend output for Zuplo's editor UI. Minification is expected; samples show React internals and Sentry integration, not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-C7S9L15j.js | AI (source-diff): Standard Vite/React minified frontend bundle for the Zuplo editor UI. Not obfuscation — recognizable React internals and Sentry SDK patterns are visible in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DQykOEu3.js | AI (source-diff): Standard Vite/React minified frontend bundle for the Zuplo editor UI. Not obfuscation — recognizable React internals and Sentry SDK patterns are visible in the sample. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DQykOEu3.js | AI (source-diff): Network calls and dynamic execution are expected in a React-based web editor frontend bundle. Sample shows React rendering code, not dropper/loader malware. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-bxe8ridy.js | AI (source-diff): Network+exec pattern is from bundler require polyfill and React runtime in a Vite build artifact. Not malware; consistent with legitimate frontend bundle for this editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-bxe8ridy.js | AI (source-diff): This is a standard Vite/Rolldown-bundled React frontend artifact for a local dev editor. Minified JS bundles are expected in dist/client/static/js/ for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BB8gnib2.js | AI (source-diff): File is a standard Vite-minified React frontend bundle. Minification triggers the long-line heuristic but contains no malicious patterns — only React runtime, Sentry SDK, and ES module boilerplate. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BB8gnib2.js | AI (source-diff): Network calls and dynamic patterns in a bundled React SPA are expected. No dropper/loader behavior present; this is standard frontend application code built with Vite. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DCxGr0lL.js | AI (source-diff): Standard Vite-minified frontend bundle for a web editor UI. Minification is expected; code samples show React internals and Sentry SDK, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DHqnDTK0.js | AI (source-diff): Frontend web editor bundle legitimately contains network calls and dynamic patterns (React, module loading). Not dropper/loader malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DHqnDTK0.js | AI (source-diff): Standard Vite-minified frontend bundle. Code samples show React framework code and Sentry debug IDs, consistent with a legitimate web editor build. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DqKgxOkc.js | AI (source-diff): This is a Vite-bundled React frontend application. Minified JS output is expected and consistent across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-6T14_cVl.js | AI (source-diff): React/Vite bundles inherently combine network calls and dynamic patterns. Sample shows standard React initialization, not dropper/loader behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-6T14_cVl.js | AI (source-diff): Vite-bundled React frontend artifact. Minified output is standard for this package's build pipeline. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CQQH4UVx.js | AI (source-diff): This is a Vite-bundled frontend build artifact for a local development editor. Minified JS bundles are expected and the sample shows standard React/Sentry code, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CQQH4UVx.js | AI (source-diff): Network+exec pattern is triggered by bundled React/Sentry SDK code in a Vite build artifact. No dropper/loader behavior present; this is a frontend editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CPE-rFkW.js | AI (source-diff): Standard Vite-bundled React SPA output. Minification is expected build artifact for @zuplo/editor's client UI. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DSlZWQgj.js | AI (source-diff): Standard Vite-bundled React SPA output for a local dev editor UI. Minification is expected; code is identifiable React/Sentry internals, not malicious obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CPE-rFkW.js | AI (source-diff): False positive: bundled React SPA naturally combines network calls and dynamic imports. No dropper/loader behavior evident; code is standard React/Sentry internals. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DTVWixbf.js | AI (source-diff): This is a Vite-bundled React SPA artifact. Minified/long-line output is expected for this package's client build. Not obfuscation in the malicious sense. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DTVWixbf.js | AI (source-diff): Network calls and dynamic patterns in a browser-side React/Vite bundle are normal. Sample shows React JSX runtime and Sentry SDK — no dropper/loader behavior. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BuBK4lSB.js | AI (source-diff): Network calls and dynamic patterns in this file are standard React/Vite browser bundle output (fetch, Sentry SDK, JSX runtime). Not dropper/loader behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BuBK4lSB.js | AI (source-diff): This is a Vite-bundled React frontend (local editor UI). Minified/long-line output is expected for every release; content-hashed filenames change per build. Not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-D_0P_Ehm.js | AI (source-diff): Standard Vite/Rollup minified frontend bundle for a React web editor. Long lines are expected minification output, not malicious obfuscation. Stable pattern for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-D_0P_Ehm.js | AI (source-diff): False positive: network+exec pattern in a 6.9MB React frontend bundle reflects normal fetch/dynamic-import usage, not dropper malware. Stable for this web editor package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DfvmkKPB.js | AI (source-diff): Standard Vite/Rollup minified frontend bundle for a React web editor. Long lines are expected minification output, not malicious obfuscation. Stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-D7dagEM8.js | AI (source-diff): This is a standard Vite/Rolldown-bundled React frontend artifact. Minified JS bundles are expected output for this editor package's client build step. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-D7dagEM8.js | AI (source-diff): Network calls and dynamic module loading in a bundled React/Vite frontend are normal patterns, not dropper/loader malware. Sentry integration and React module system are clearly visible in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-DBgjBkAa.js | AI (source-diff): Standard Vite-minified React bundle for a frontend editor. Minification is expected and consistent across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-DBgjBkAa.js | AI (source-diff): False positive: network calls and dynamic execution are React/Vite standard patterns in a bundled frontend editor, not dropper/loader malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-D8tuitJV.js | AI (source-diff): Standard Vite-minified React bundle for a frontend editor. Minification is expected and consistent across all versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CJolj2dn.js | AI (source-diff): Frontend React app bundles inherently combine network calls and dynamic code execution (lazy loading, API calls). This is not dropper/loader behavior — samples show React internals and Sentry integration. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-CudHiOOV.js | AI (source-diff): This is standard Vite-minified React bundle output. The package ships a built frontend editor; minified JS files are expected and stable for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CJolj2dn.js | AI (source-diff): Standard Vite-minified React bundle output. Content-hashed filenames are expected from the Vite build pipeline used by this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-ZYmgkJTN.js | AI (source-diff): Network calls and dynamic module loading in a React SPA bundle are normal browser-side patterns, not dropper/loader malware. Expected for this package's frontend build artifacts. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-ZYmgkJTN.js | AI (source-diff): This is a standard Vite/Rolldown-bundled React SPA artifact. Minified frontend build output is expected for @zuplo/editor and will appear in every release. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-NAKGIzVO.js | AI (source-diff): Standard Vite-bundled React application output. Long lines are minified JS, not obfuscation. Sentry debug IDs and React internals are clearly visible in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-QeoFC4Kk.js | AI (source-diff): Standard Vite-bundled React application output. Long lines are minified JS, not obfuscation. Sentry debug IDs and React internals are clearly visible in the sample. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-QeoFC4Kk.js | AI (source-diff): False positive on Vite-bundled React code. Network calls and dynamic patterns are standard React/Sentry runtime behavior, not dropper/loader malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BrtrhuTj.js | AI (source-diff): Standard Vite/React minified build output for a web editor frontend. Sentry debug IDs and React internals confirm legitimate provenance. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-DpTbDGw9.js | AI (source-diff): Standard Vite/React minified build output for a web editor frontend. Sentry debug IDs and React internals confirm legitimate provenance. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BrtrhuTj.js | AI (source-diff): False positive: bundled React SPA naturally combines fetch calls and dynamic module loading (Vite lazy chunks). Not dropper/loader behavior. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-0Bd9tDfh.js | AI (source-diff): False positive on Vite-bundled React app. Frontend bundles inherently combine network calls and dynamic execution (React rendering). Sample confirms standard React/Sentry code, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BqBl2YR5.js | AI (source-diff): Standard Vite-minified React bundle with content-hashed filename. This package always ships pre-built frontend assets; minification is expected and stable. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-0Bd9tDfh.js | AI (source-diff): Standard Vite-minified React bundle with content-hashed filename. This package always ships pre-built frontend assets; minification is expected and stable. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BY7UJAHm.js | AI (source-diff): Network + dynamic code patterns in a 6.9MB Vite/React bundle are false positives. Sample shows React internals and module initialization, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BY7UJAHm.js | AI (source-diff): Standard Vite-bundled React chunk with Sentry debug IDs. Minified output is expected for this editor package's client build. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-C_r9frVH.js | AI (source-diff): This is a standard Vite-bundled React application entry point. Long lines are expected minified output, not obfuscation. Stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-BdknqvrW.js | AI (source-diff): This is a standard Vite/React minified frontend bundle. The package builds a local development editor UI; minified JS dist files are expected and consistent across all versions. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-BdknqvrW.js | AI (source-diff): Frontend SPA bundle legitimately combines network calls (API requests) and dynamic rendering. No dropper/loader patterns present; code is standard React/Vite build output. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BXJDZ181.js | AI (source-diff): This is a Vite-bundled React frontend asset. Minified output is expected and normal for @zuplo/editor's client-side build artifacts. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-CsVeIdaX.js | AI (source-diff): False positive: React SPA bundles inherently contain both network calls and dynamic code execution. Sample confirms standard React/Sentry patterns with no malicious payload. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-CsVeIdaX.js | AI (source-diff): Standard Vite/React minified bundle. Sample shows React internals and Sentry SDK patterns — legitimate frontend build output, not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main-BfJLDd_y.js | AI (source-diff): This is a Vite-minified React bundle for the editor UI. Minified frontend build artifacts are expected and stable for this package. | ai | |
| source-diff | net-exec-file:dist/client/static/js/main.local-Tnf6LT7i.js | AI (source-diff): Network calls and dynamic execution in this file are standard React/Vite frontend patterns (Sentry init, React rendering). Not dropper/loader behavior. | ai | |
| source-diff | obfuscated-file:dist/client/static/js/main.local-Tnf6LT7i.js | AI (source-diff): This is a Vite-minified React bundle for the local editor UI. Minified frontend build artifacts are expected and stable for this package. | ai | |
| dependencies | unvetted-dep:fastify | AI (dependencies): Fastify is a well-known, widely-used Node.js web framework. Its use in a Zuplo local dev editor server is expected and legitimate. | ai | |
| phantom-deps | phantom-dep:pino | AI (phantom-deps): Pino is a declared dependency used via configuration/transport system rather than direct import; standard pino usage pattern. | ai | |
| phantom-deps | phantom-dep:@fastify/http-proxy | AI (phantom-deps): @fastify/http-proxy is a declared dependency registered as a fastify plugin; dynamic plugin registration is standard fastify pattern. | ai | |
| phantom-deps | phantom-dep:pino-http-print | AI (phantom-deps): pino-http-print is a declared dependency used via config; standard pino transport pattern. | ai | |
| phantom-deps | phantom-dep:pino-pretty | AI (phantom-deps): pino-pretty is a declared dependency used as a pino transport via config; standard pino usage pattern. | ai | |
| bogus-package | bogus-package | AI (bogus-package): @zuplo/editor is a scoped internal tooling package from Zuplo, Inc. Short README and no public repo URL are expected for internal developer tools; not indicative of spam. | ai | |
| phantom-deps | phantom-dep:pino-http | AI (phantom-deps): pino-http is a declared dependency used via config rather than direct import; standard fastify/pino integration pattern. | ai |
Versions (showing 100 of 404)
Showing 100 of 404
Next page →
v1.0.23668863644
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23666517871
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23663453273
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23657103083
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23650898071
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23648119843
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23641994474
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-BMgJadKf.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CIqWqp-I.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CIqWqp-I.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23641575207
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23605899715
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23605757824
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23605471264
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23605458781
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-BeP6yNh6.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BvixIzPk.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BvixIzPk.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23605421556
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23604895587
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DSlZWQgj.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CPE-rFkW.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CPE-rFkW.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23604840290
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23602169512
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23602035511
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23599179292
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23596332899
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-D-cDzbzi.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BmkWEutl.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BmkWEutl.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23591696551
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23586972499
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23570507842
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23569258828
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23558569389
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23557935386
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-BbVn_J0U.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BZ2k6s7a.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BZ2k6s7a.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23556756340
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23553860152
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DCJWDsPR.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BYtBc-RR.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BYtBc-RR.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23551646356
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23540147708
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23539167602
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23531456060
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23514371472
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-CDDfLj-9.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BhJtA1wV.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BhJtA1wV.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23513336220
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-CxW3iTeH.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-Cgii-lEy.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-Cgii-lEy.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23510676272
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DueiKSQW.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-Dn7xY7PK.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-Dn7xY7PK.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23510385550
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-tlOLLnH5.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-B0I1HXaX.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-B0I1HXaX.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23502227637
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-nJEZs4Qw.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-DV-eXEm-.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-DV-eXEm-.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23499538004
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DT5NzxKB.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BvOtloqK.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BvOtloqK.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23498248584
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-2pKp_1_R.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CzXPsApm.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CzXPsApm.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23497572313
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-9yVgTDwS.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CfKHbAFI.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CfKHbAFI.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23480852103
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-BXJDZ181.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CsVeIdaX.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CsVeIdaX.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23458555804
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-C5VQHW-f.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CYd4BF8I.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CYd4BF8I.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23457373186
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-AeAB_gHU.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CwyQnmI_.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CwyQnmI_.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23457364273
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-BC7UEeLk.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CRP0L4jR.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CRP0L4jR.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23449185124
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-OMsuCQpq.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CqOOIVns.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CqOOIVns.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23448607944
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DhBN0nt1.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CY9endJL.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CY9endJL.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23447210778
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-CYQ_PqcT.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-Cz2tXOje.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-Cz2tXOje.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23436961187
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-BfdnCa89.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-Cli6jXeg.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-Cli6jXeg.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23409078635
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DO3zm5jj.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-DkyT5GyX.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-DkyT5GyX.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23408122972
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-l9j0FTc_.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-C3Wze7kl.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-C3Wze7kl.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23387224981
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-D2tyYqoe.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BSWTsD7o.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BSWTsD7o.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23357862632
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DQpWuMPE.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CQ6hIta5.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CQ6hIta5.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23354059459
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-Ds1P1EDS.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-D-V_ZRcS.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-D-V_ZRcS.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23307220301
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-Czxeh6nK.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BC9l7708.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BC9l7708.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23293944157
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-Dxmwg7Qd.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CE7GwJZa.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CE7GwJZa.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23293091549
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-B0HOxBvc.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-cxNqAgjo.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-cxNqAgjo.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23243050588
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DB6IbcUI.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-3KfYi1O1.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-3KfYi1O1.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23188612330
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DfvmkKPB.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-D_0P_Ehm.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-D_0P_Ehm.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23150817031
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-Og9N9sIz.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-6va7uJx7.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-6va7uJx7.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23147757821
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-BfJLDd_y.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-Tnf6LT7i.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-Tnf6LT7i.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.23046759928
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23009245527
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23007403426
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23007090703
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.23003836252
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22977984766
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22957503884
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22932708374
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DsAT-Gif.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BP_3ZZS9.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BP_3ZZS9.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22902109903
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-0gqgP9_d.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-DL0hZsQA.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-DL0hZsQA.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22902103296
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22901811628
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22899861890
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22899830489
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-B_LlBOkI.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-DXpmI9Uo.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-DXpmI9Uo.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22899240348
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-BZaCxQmb.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CcRRpQTK.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CcRRpQTK.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22892787306
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-DvTPQuRd.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-SonvzG7T.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-SonvzG7T.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22864515921
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22857782964
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-BwWqmLaS.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CYg3Rw0S.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CYg3Rw0S.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22857724832
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-xTKoGjjm.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CYBSssTq.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CYBSssTq.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22857435548
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-Cw6Tdtn9.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-Bok2FeTD.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-Bok2FeTD.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22857139894
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-grIkTdpI.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BtdK038g.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BtdK038g.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22855185572
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-E7Rjp5xb.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-DKCM6HeY.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-DKCM6HeY.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22855151911
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-BA0Hf2Tu.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CeMlbETL.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CeMlbETL.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22854660982
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-C3TMdpjY.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-BWLTpVOP.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-BWLTpVOP.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22851765617
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22851209440
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22851123239
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22851093350
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22850784850
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22850697665
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22850686207
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22850681086
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22842588776
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22774787810
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22766656495
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22761823538
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22759718279
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-ete-4ehy.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-oPpDkBgT.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-oPpDkBgT.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22757904635
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22757662614
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22729552182
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.0.22720729229
4 findings
HIGH
New obfuscated file: dist/client/static/js/main-Bxuhfs-O.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New obfuscated file: dist/client/static/js/main.local-CEkoCoMw.js
source-diff
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
HIGH
New file with network + code execution: dist/client/static/js/main.local-CEkoCoMw.js
source-diff
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.22720669533
1 finding
LOW
No provenance attestation
provenance
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.